SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 195

changes.mady.by.user David Svoboda

Saved on

compared with

New Version 196

changes.mady.by.user Amy Gale

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Added CodeSonar entry to Automated Detection section

...

Tool

Version

Checker

Description

CodeSonar
Include Page
CodeSonar_V
CodeSonar_V

IO.RACE

IO.TAINT.FNAME

BADFUNC.TEMP.*

File System Race Condition

Tainted Filename

A collection of warning classes that report uses of library functions associated with (name-related) temporary file vulnerabilities.

Compass/ROSE

 

 

Can detect some violations of this recommendation. In particular, it warns when chown(), stat(), or chmod() are called on an open file

Coverity6.5TOCTOUFully implemented

Klocwork

Include Page
Klocwork_V
Klocwork_V

SV.TOCTOU.FILE_ACCESS

 

LDRA tool suite

Include Page
LDRA_V
LDRA_V

592 S

Fully implemented

PRQA QA-C
Include Page
PRQA_V
PRQA_V
Warncall remove
rename
fopen
freopen		Partially implemented

...